IINS London 04-Jan-1900

Implementing Cisco IOS Network Security

Course Title: Implementing Cisco IOS Network Security

Course Code: IINS 640-553Duration: 5 Days

Course Overview

The Implementing Cisco IOS Network Security (IINS) instructor-led training course focuses on the requirement for a comprehensive security policy and how it affects the posture of the network. Candidates will be able to perform the basic tasks required to secure a small branch type office network using Cisco IOS security features available through web-based GUI`s (Cisco Router and Security Device Manager [SDM]) and the command-line interface (CLI`s) on the Cisco routers and switches.

Target Audience

Candidates who should consider attending the IINS 640-553 Cisco training course are individuals looking for an entry level understanding of security on the network. This course is also aimed at candidates looking to attain their CCNA Security certification and provides the perfect preparation for the 640-553 IINS exam.

Course Objectives

On successfully completing the IINS 640-553 course candidates will be able to:

Configure routers on the network perimeter with Cisco IOS Software Security features

Configure a Cisco IOS zone-based firewall to perform basicsecurity operations on a network

Configure site-to-site VPN`s using Cisco IOS features

Configure IPS on Cisco Network routers

Configure LAN devices to control access, resist attacks, shield other network devices and systems and protect the integrity and confidentiality of network traffic

Course Prerequisites

Candidates attending the IINS 640-553 Cisco training course should hold a valid CCNA certification or have completed both ICND1 and ICND2.

Testing and Certification

The IINS Cisco training course is the recommended preparation for the 640-553 IINS - Implementing Cisco IOS Network Security exam and helps to prepare candidates who wish to obtain CCNA Security Certification. Security, VPN, IPS and FIREWALL are recommended courses for further study for candidates who wish to achieve CCNP Security Certification.

Course Content

Introduction to Network Security Principles:

Examining Network Security Fundamentals

Examining Network Attack Methodologies

Examining Operations Security

Understanding and Developing a Comprehensive Network Security Policy

Building Cisco Self-Defending Networks

Perimeter Security:

Securing Administrative Access to Cisco Routers

Introducing Cisco SDM

Configuring AAA on a Cisco Router Using the Local Database

Configuring AAA on a Cisco Router to Use Cisco Secure ACS

Implementing Secure Management and Reporting

Locking down the Router

Network Security Using Cisco IOS Firewalls:

Introducing Firewall Technologies

Creating Static Packet Filters Using ACL`s

Configuring Cisco IOS Zone-based Policy Firewall

Site-to-Site VPN`s:

Examining Cryptographic Services

Examining Symmetric Encryption

Examining Cryptographic Hashes and Digital Signatures

Examining Asymmetric Encryption and PKI

Examining IPsec Fundamentals

Building Site-to Site IPsec VPN

Configuring IPsec on a Site-to Site VPN Using Cisco SDM

Network Security Usind Cisco IOS IPS:

Introducing IPS Technologies

Configuring Cisco IOS IPS Using Cisco SDM

LAN, SAN, Voice and Endpoint Security Overview:

Examining Endpoint Security

Examining SAN Security

Examining Voice Security

Migrating Layer 2 Attacks

Labs:

Embedding a Secret Message Using Steganography

Scanning a Computer System Using Testing Tools

Scanning a Network Using Testing Tools

Securing Administration Access to Cisco Routers

Configuring AAA on Cisco Routers to Use the Local Database

Configuring AAA on Cisco Routers to Use Cisco Secure ACS

Implementing Secure Management and Reporting

Using Cisco SDM One-Step Lockdown and Security Audit

Creating Static Packet Filters Using ACLs

Configuring a Cisco IOS Zone-Based Policy Firewall

Configuring a Site-to-Site IPsec VPN

Configuring Cisco IOS IPS

Using Cisco Catalyst Switch Security Features

Recertification

IINS 640-553 is part of the Cisco CCNA Security certification and is valid for 3 years. To recertify, pass a CCNA concentration exam (wireless, security, voice), or pass any 642 - XXX professional level or Cisco Specialist exam (excluding Sales Specialist exams), or pass a current CCIE or CCDE written exam.

PLEASE NOTE: Every effort has been made to ensure the accuracy of all information contained herein. IT Help and Support Centre Ltd makes no warranty expressed or implied with respect to accuracy of this information, including price, product editorials or product specifications. IT Help and Support Centre Ltd or its suppliers shall not be liable for incidental, consequential or special damages arising from, or as a result of, any electronic transmission or the accuracy of the information contained herin, even if IT Help and Support Centre Ltd has been advised of the possibility of such damages. Product and manufacturer names are used only for the purpose of identification.

This Website is not sponsored by, endorsed by or affiliated with Cisco Systems, Inc. CCDA, CCDP, CCIE, CCIP, CCNA, CCNP, Cisco, Cisco IOS, Cisco Systems, the Cisco Systems logo, and Networking Academy are registered trademarks or trademarks of Cisco Systems, Inc. and/or its affiliates in the U.S. and certain other countries. All other trademarks mentioned in this web site are the property of their respective owners.